darkvnc | d5e0eecc3da1a2bc3f36df0a05c0ce116def64c9e6c72224c8988a671ed7fe8a | Triage

Submit
Reports

Overview

overview

Static

static

64b4db1046...4d.exe

windows7_x64

64b4db1046...4d.exe

windows10_x64

Sharing

General

Target

64b4db1046496c57a0779befc72c264d
Size

448KB
Sample

210808-65aq78vnjx
MD5

64b4db1046496c57a0779befc72c264d
SHA1

71cfbee47a5b6f0bb18bba914b5896b3037cfeab
SHA256

d5e0eecc3da1a2bc3f36df0a05c0ce116def64c9e6c72224c8988a671ed7fe8a
SHA512

d59bf100032299d10e6737d9489202545ce4cf3b403407da0ba0fbbd0f72b502478ce3557008ad785e146041a100e2e48ba1d9414a983d954cea7437c424f3da

Score

10^/10

darkvnc rat

Static task

static1

Behavioral task

behavioral1

Sample

64b4db1046496c57a0779befc72c264d.exe

Resource

win7v20210408

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

64b4db1046496c57a0779befc72c264d.exe

Resource

win10v20210410

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  64b4db1046496c57a0779befc72c264d
- Size
  
  448KB
- MD5
  
  64b4db1046496c57a0779befc72c264d
- SHA1
  
  71cfbee47a5b6f0bb18bba914b5896b3037cfeab
- SHA256
  
  d5e0eecc3da1a2bc3f36df0a05c0ce116def64c9e6c72224c8988a671ed7fe8a
- SHA512
  
  d59bf100032299d10e6737d9489202545ce4cf3b403407da0ba0fbbd0f72b502478ce3557008ad785e146041a100e2e48ba1d9414a983d954cea7437c424f3da
Score

10^/10

darkvnc rat
- DarkVNC
  DarkVNC is a malicious version of the famous VNC software.
  rat darkvnc
- Suspicious use of NtCreateProcessExOtherParentProcess
- DarkVNC Payload
  rat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy